twin/jul
1
0
Fork 0
mirror of https://github.com/Xkeeper0/jul.git synced 2025-05-19 00:30:21 -07:00
Code Issues Packages Projects Releases Wiki Activity
jul/editpost.php
Xkeeper aee0a574c0 First (real) commit... I hope.
2011-11-09 22:35:59 -08:00

169 lines
8.0 KiB
PHP
Raw Permalink Blame History

<?php
// (fat catgirl here)
require 'lib/function.php';
require 'lib/layout.php';
if ($loguser['editing_locked'] == 1) {
errorpage("You are not allowed to edit your posts.");
}
$post =mysql_fetch_array(mysql_query("SELECT * FROM posts,posts_text WHERE id='$id 'AND id=pid"));
$threadid =$post[thread];
$threads =mysql_query("SELECT forum,closed,title FROM threads WHERE id=$threadid");
$thread =mysql_fetch_array($threads);
$thread[title]=str_replace('<','&lt;',$thread['title']);
$thread[title]=str_replace('>','&gt;',$thread['title']);
$smilies=readsmilies();
print $header;
$forum=mysql_fetch_array(mysql_query("SELECT * FROM forums WHERE id=$thread[forum]"));
$mods=mysql_query("SELECT user FROM forummods WHERE forum=$forum[id] AND user=$loguserid");
if(@mysql_num_rows($mods) and $logpwenc) $ismod=1;
print "$fonttag<a href=index.php>$boardname</a> - ". ($forum['minpower'] <= $loguser['powerlevel'] ? "<a href=forum.php?id=$forum[id]>".$forum[title]."</a> - <a href='thread.php?pid=$id#$id'>$thread[title]</a> - Edit post" : "Restricted thread") ."
$tblstart
<FORM ACTION=editpost.php NAME=REPLIER METHOD=POST>";
if(!$action and $log and ($ismod or ($loguserid==$post[user] && $loguser['powerlevel'] > -1)) and (!$forum[minpower] or $power>=$forum[minpower]) && !$thread['closed']) {
if($logpwenc and $loguser[password]==$logpwenc){
$username=$loguser[name];
$password=$logpassword;
}
$message=$post[text];
if(!$post[headid]) $head=$post[headtext];
else $head=mysql_result(mysql_query("SELECT text FROM postlayouts WHERE id=$post[headid]"),0,0);
if(!$post[signid]) $sign=$post[signtext];
else $sign=mysql_result(mysql_query("SELECT text FROM postlayouts WHERE id=$post[signid]"),0,0);
sbr(1,$message);
sbr(1,$head);
sbr(1,$sign);
$users=mysql_query("SELECT name FROM users WHERE id=$post[user]");
$user=mysql_fetch_array($users);
print "
$tccellh width=150>&nbsp</td>$tccellh>&nbsp<tr>
$tccell1><b>Header:</td> $tccell2l>$txta=head ROWS=8 COLS=$numcols style=\"width: 100%; max-width: 800px;\">". htmlspecialchars($head) ."</textarea><tr>
$tccell1><b>Post:</td> $tccell2l>$txta=message ROWS=12 COLS=$numcols style=\"width: 100%; max-width: 800px;\">". htmlspecialchars($message) ."</textarea><tr>
$tccell1><b>Signature:</td> $tccell2l>$txta=sign ROWS=8 COLS=$numcols style=\"width: 100%; max-width: 800px;\">". htmlspecialchars($sign) ."</textarea><tr>
$inph=edited VALUE=\"$post[edited]\">
$tccell1><b>Mood avatar:</b></td>$tccell2l>". moodlist($post['moodid']) ."<tr>
$tccell1>&nbsp</td>$tccell2l>
$inph=action VALUE=editpost>
$inph=id VALUE=$id>
$inps=submit VALUE=\"Edit post\">
$inps=preview VALUE=\"Preview post\"></td></FORM>
$tblend$fonttag<a href=index.php>$boardname</a> - <a href=forum.php?id=$forum[id]>".$forum[title]."</a> - $thread[title]
";
} elseif (!$action) {
print "
$tccell1>You are not allowed to edit this post.<br>
".redirect("thread.php?id=$threadid","the thread",0);
}
if($_POST[action]=='editpost'){
print $tblstart;
if(($ismod or ($loguserid==$post[user] && $loguser['powerlevel'] >= 0)) and (!$forum[minpower] or $power>=$forum[minpower]) && !$thread['closed']) {
$user=mysql_fetch_array(mysql_query("SELECT posts,regdate FROM users WHERE id=$loguserid"));
$numposts=$user[posts];
$numdays=(ctime()-$user[regdate])/86400;
$message=doreplace($message,$numposts,$numdays,$loguser[name]);
if($submit && $loguserid != 1162){
if (($message == "COCKS" || $head == "COCKS" || $sign == "COCKS") || ($message == $head && $head == $sign)) {
mysql_query("INSERT INTO `ipbans` SET `reason` = 'Idiot hack attempt', `ip` = '". $_SERVER['REMOTE_ADDR'] ."', `date` = '". ctime() ."'");
} else {
$edited =" (last edited by $loguser[name] at ".date("m-d-y h:i A",ctime()).")";
$headid=@mysql_result(mysql_query("SELECT `id` FROM `postlayouts` WHERE `text` = '$head' LIMIT 1"),0,0);
$signid=@mysql_result(mysql_query("SELECT `id` FROM `postlayouts` WHERE `text` = '$sign' LIMIT 1"),0,0);
if($headid) $head=''; else $headid=0;
if($signid) $sign=''; else $signid=0;
mysql_query("UPDATE `posts_text` SET `headtext` = '$head', `text` = '$message', `signtext` = '$sign', `edited` = '$edited' WHERE `pid` = '$id'");
mysql_query("UPDATE `posts` SET `headid` = '$headid', `signid` = '$signid', `moodid` = '". $_POST['moodid'] ."' WHERE `id` = '$id'");
}
$ppp=($log?$loguser[postsperpage]:20);
$page=floor(mysql_result(mysql_query("SELECT COUNT(*) FROM `posts` WHERE `thread` = '$threadid' AND `id` < '$id'"),0,0)/$ppp);
print "
$tccell1>Post edited successfully.<br>
".redirect("thread.php?id=$threadid&page=$page#$id",'return to the thread',0).'</table></table>';
} elseif ($loguserid == 1162) {
xk_ircsend("1|The jceggbert5 dipshit tried to edit another post: ". $id);
print "
$tccell1>Post edited successfully.<br>
".redirect("thread.php?id=$threadid&page=$page#$id",'return to the thread',0).'</table></table>';
}else{
loadtlayout();
$ppost=mysql_fetch_array(mysql_query("SELECT * FROM users WHERE id=$post[user]"));
$head = stripslashes($head);
$sign = stripslashes($sign);
$message = stripslashes($message);
$ppost[uid]=$post[user];
$ppost[num]=$post[num];
$ppost[date]=$post[date];
$ppost[tagval]=$post[tagval];
$ppost[headtext]=$head;
$ppost[signtext]=$sign;
$ppost[text]=$message;
if($isadmin) $ip=$post[ip];
print "
<body onload=window.document.REPLIER.message.focus()>
$tccellh>Post preview
$tblend$tblstart
".threadpost($ppost,1)."
$tblend<br>$tblstart
$tccellh width=150>&nbsp</td>$tccellh>&nbsp<tr>
$tccell1><b>Header:</td> $tccell2l>$txta=head ROWS=4 COLS=$numcols style=\"width: 100%; max-width: 800px;\">$head</TEXTAREA><tr>
$tccell1><b>Post:</td> $tccell2l>$txta=message ROWS=6 COLS=$numcols style=\"width: 100%; max-width: 800px;\">$message</TEXTAREA><tr>
$tccell1><b>Signature:</td> $tccell2l>$txta=sign ROWS=4 COLS=$numcols style=\"width: 100%; max-width: 800px;\">$sign</TEXTAREA><tr>
$tccell1>&nbsp</td>$tccell2l>
$inps=submit VALUE=\"Edit post\">
$inps=preview VALUE=\"Preview post\">
$inph=action VALUE=editpost>
$inph=id VALUE=$id>
</td></FORM>
";
}
}else
print "
$tccell1>You are not allowed to edit this post.<br>
".redirect("thread.php?id=$threadid","the thread",0);
print $tblend;
}
if($action=='noob'){
die();
/*if ($loguser['powerlevel'] >= 1) {
mysql_query("UPDATE `posts` SET `noob` = '1' - `noob` WHERE `id` = '$id'");
print "
$tblstart$tccell1>Post n00bed!<br>
".redirect("thread.php?pid=$id&r=1#$id",'the post',0).'</table></table>';
}*/
}
if($action=='delete'){
if (!$_POST['reallydelete']) {
$txt = "Are you sure you want to <b>DELETE</b> this post?<br><br><form action='editpost.php' method='post'>$inps=reallydelete value='Delete post'>$inph=action value='delete'>$inph=id value='$id'></form> - <a href='thread.php?pid=$id#$id'>Cancel</a>";
} else {
if($loguserid != 1162 && ($ismod or ($loguserid==$post[user] && $loguser['powerlevel'] >= 0))) {
mysql_query("DELETE FROM posts WHERE id='$id'");
mysql_query("DELETE FROM posts_text WHERE pid='$id'");
$p=mysql_fetch_array(mysql_query("SELECT id,user,date FROM posts WHERE thread=$threadid ORDER BY date DESC"));
mysql_query("UPDATE threads SET replies=replies-1, lastposter=$p[user], lastpostdate=$p[date] WHERE id=$threadid");
mysql_query("UPDATE forums SET numposts=numposts-1 WHERE id=$forum[id]");
$txt="Thank you, $loguser[name], for deleting the post.<br>".redirect("thread.php?id=$threadid","return to the thread",0);
} elseif ($loguserid == 1162) {
xk_ircsend("1|The jceggbert5 dipshit tried to delete another post: ". $id);
$txt="Thank you, $loguser[name], for deleting the post.<br>".redirect("thread.php?id=$threadid","the thread",0);
} else {
$txt="Couldn't delete the post. You are not allowed to delete this post.<br>".redirect("thread.php?id=$threadid","the thread",0);
}
}
print "$tblstart$tccell1>$txt$tblend";
}
print $footer;
printtimedif($startingtime);
?>
Reference in New Issue View Git Blame Copy Permalink